Creating OUs

This topic demonstrates how to create a new Active Directory OU in EmpowerID and is divided into the following activities:

Prerequisites: In order to create OUs, EmpowerID must be connected to Active Directory.

To create an OU

  1. From the Navigation Sidebar, navigate to the Business Roles and Locations management page by expanding Identities and clicking Business Roles.
  2. From the Business Roles and Locations management page, click the Actions tab and then click Create OU.
  3. In the Select Parent OU lookup that appears, do the following:
    1. Search for the parent OU under which you want to create the new OU and select it by clicking the node for it in the tree.
    2. Click Submit.
    3. To allow the process to continue, leave Wait to See Resultsselected. If you deselect Wait to See Results on this screen and then click Submit, the process will idle and EmpowerID will create a task for it, routing it to any Person with the delegations to continue creating the OU.

  4. In the Create OU form that appears, do the following:
    1. Type a name for the new OU in the Name field.
    2. Optionally, type a description in the Description field.
    3. Tick Do Not Allow Delete in EmpowerID if you want to prevent the deletion of the OU in EmpowerID.
    4. Click Submit.
    5. If you leave Wait to See Resultsselected here, EmpowerID will display an Operation Execution Summary that specifies whether the OU was successfully created. If you deselect this, EmpowerID will execute the operation without showing you the results.

  5. If you left Wait to see results selected, click OK to close the Operation Execution Summary.

To verify the OU was created in EmpowerID

  1. From the Business Roles and Locations management page, click the Locations tab and search for the OU you just created.
  2. You should see a record of type Active Directory Organizational Unit (System) for the OU appear in the grid.

  3. From the Navigation Sidebar, navigate to the Audit Log by expanding Compliance and Reports and clicking Audit Log.
  4. In the Audit Log, click the Recently Created Objects tab and then search for the OU.
  5. You should see record for the OU appear in the grid.

    If you have an email account that is registered with EmpowerID, you can email the contents of this grid to your email account by clicking on the Email icon.

To verify the OU was created in Active Directory

  1. On a server with the Active Directory PowerShell module, run the following PowerShell cmdlet (substituting the name of the OU in the cmdlet with the OU you created):
  2. Get-ADOrganizationalUnit -Filter {name -eq "Customers"}

    You should see a record for the OU.